Unsupported credential type AzureIdentityCredentialAdapter when using AzureDataLakeStorageV2Hook with DefaultAzureCredential as authentication method (AKS workload indentity) #39521
Labels
area:providers
good first issue
kind:bug
This is a clearly a bug
provider:microsoft-azure
Azure-related issues
Apache Airflow Provider(s)
microsoft-azure
Versions of Apache Airflow Providers
apache-airflow-providers-microsoft-azure==9.0.1
azure-identity==1.15.0
azure-storage-blob==12.19.1
azure-storage-file-datalake==12.14.0
Apache Airflow version
Airflow v2.8.3 with Python 3.10.14
Operating System
Debian GNU/Linux 11 (bullseye)
Deployment
Official Apache Airflow Helm Chart
Deployment details
k8s v1.27.3 (AKS with Microsoft Entra Workload ID enabled)
Airflow helm chart v1.13.1
Credentials injected by workload identity as environment variables
(airflow)env | grep AZURE AZURE_AUTHORITY_HOST=https://login.microsoftonline.com/ AZURE_CLIENT_ID=xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx AZURE_FEDERATED_TOKEN_FILE=/var/run/secrets/azure/tokens/azure-identity-token AZURE_TENANT_ID=xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx
Microsoft Azure Data Lake Storage Gen2 Connection environment variable
What happened
What you think should happen instead
DefaultAzureCredential authentication method should work as expected using workload identity
How to reproduce
I've created a custom operator to list the filesytem of Azure Data Lake Storage Gen2 using the method "list_file_system" from AzureDataLakeStorageV2Hook class.
Anything else
No response
Are you willing to submit PR?
Code of Conduct
The text was updated successfully, but these errors were encountered: